[00:05.850 --> 00:12.550]  Hello and welcome to the Payment Village. My name is Leanne Galloway and I am the Payment Village Lead.
[00:12.550 --> 00:19.390]  We set up the Payment Village because we felt like so many of us have an interaction with
[00:19.390 --> 00:25.770]  payment technologies every day, yet most of us don't know how they work. And it seems from the
[00:25.770 --> 00:31.650]  outside that the barriers for entry are particularly high. So we set up this village as a way to change
[00:31.650 --> 00:40.530]  that. We've provided a range of content including talks and lab exercises. If you need to find any
[00:40.530 --> 00:46.110]  information, please first of all start with our website which is thepaymentvillage.org.
[00:46.110 --> 00:52.870]  You'll find the schedule, information about how to access Discord, how to register for Discord,
[00:52.870 --> 00:59.530]  and how to access our Twitch and YouTube channels. We have a number of talks over the three days
[00:59.530 --> 01:03.610]  and all of those are going to be broadcast to Twitch and YouTube.
[01:04.010 --> 01:09.870]  All of the information for that will be provided in Discord and following each talk we will have
[01:10.030 --> 01:17.770]  a Q&A session which will take place on Discord. This will be moderated by myself and by Tim who
[01:17.770 --> 01:25.470]  is one of the Payment Village staff. So after this talk we have a talk by Dr Stephen Murdoch from UCL
[01:25.470 --> 01:31.710]  and he's going to be talking to us about TLV. So when we look at the communication between a card
[01:31.710 --> 01:41.090]  and a terminal for EMV, the data is sent in units called Application Protocol Data Units or APDUs.
[01:41.090 --> 01:46.630]  Now within each message that's sent, the data is sent in a structure called TLV or Tag Length
[01:46.630 --> 01:54.470]  and Value. So he's going to be talking to us about why this is important, how we can understand it,
[01:54.470 --> 02:01.070]  and how we can decode it. So following that talk we have a talk from Tim Unisoft and he's
[02:01.070 --> 02:07.070]  going to be talking to us about how you can get started with bug bounty for payments.
[02:07.070 --> 02:10.930]  I think what's particularly interesting about this talk is he's going to talk about
[02:11.570 --> 02:16.810]  some of the challenges that are specific to this area. On Saturday we have a talk from
[02:16.810 --> 02:25.410]  Yuri Rivner of BioCatch and he's going to be discussing identity data as a commodity.
[02:25.690 --> 02:31.110]  So he's going to be talking about all sorts of interesting things like synthetic IDs which are
[02:31.330 --> 02:38.850]  a particular problem in the US. So this might be where a fraudster creates an ID from constructed
[02:38.850 --> 02:44.450]  data, some of that might be real, so for example using the social security numbers of deceased
[02:44.450 --> 02:49.950]  people or children. So I'm particularly interested in seeing this talk and what he has to say about
[02:49.950 --> 02:55.390]  that. Then we have a talk by Arkady Litvinenko and he's going to be talking about online banking
[02:55.390 --> 03:01.910]  security. Specifically he's going to focus on the difference between online banking security
[03:01.910 --> 03:06.330]  assessments and traditional application assessments. So we'll be looking at some
[03:06.330 --> 03:12.330]  specific issues that are associated with banking security, some of which will be focusing around
[03:12.330 --> 03:17.990]  the actual logic of the application. On Sunday we have a talk by Alexey Stenikov and he's going
[03:17.990 --> 03:24.250]  to be talking about the security or lack of security in point-of-sales terminals. Alexey's
[03:24.370 --> 03:29.870]  a hardware reverser so he'll be talking about the security mechanisms that we can find commonly
[03:29.870 --> 03:36.650]  within terminals and how those can be bypassed. Following Alexey we have a talk by Minarka
[03:37.190 --> 03:43.810]  and she's going to be talking about how we can architect modern payment gateways and do this in
[03:43.970 --> 03:49.710]  a secure manner. In addition to the talks we have a number of lab exercises which are available on
[03:49.710 --> 03:56.410]  our website. We'll be providing support for those in Discord. So under the PayLabs text
[03:56.410 --> 04:03.990]  you'll be able to post your questions and we'll get back to you. In addition to all of these things
[04:03.990 --> 04:08.750]  we do have a number of stickers available so if you're interested in that please ping myself or
[04:08.750 --> 04:17.230]  Tim or just ping in the general chat. And please tag us online on Twitter using the tag
[04:18.210 --> 04:22.790]  atpaymentvillage. And finally have an amazing time. I hope that this provides you with a great
[04:22.790 --> 04:26.770]  introduction into payments and you'll be keen to come back next year.
